ZIP64 End of Central Directory (EOCD) Locator record offset not checked

Libssh: memory exhaustion via repeated key exchange in libssh

GNU Binutils DWARF Section dwarf.c process_debug_info memory leak

GNU Binutils BFD Library elf.c bfd_elf_get_str_section null pointer dereference

Rejected reason: Maintainers have included reasons at https://gitlab.gnome.org/GNOME/libsoup/-/issues/465

Tarfile infinite loop during parsing with negative member offset

LibTIFF thumbnail.c setrow buffer overflow

LibTIFF tiffmedian.c get_histogram use after free

: null pointer dereference in libssh kex session id calculation

The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be accomplished either by a malloc failure or by using an interposed malloc that injects random malloc failures. The double free can allow buffer manipulation depending of how the regex is constructed. This issue affects all architectures and ABIs supported by the GNU C library.

Chromium: CVE-2025-8011 Type Confusion in V8

Chromium: CVE-2025-8010 Type Confusion in V8

Usage of unsafe random function in form-data for choosing boundary

Chromium: CVE-2025-7657 Use after free in WebRTC

Chromium: CVE-2025-7656 Integer overflow in V8

GNU Binutils elf.c bfd_elf_set_group_contents out-of-bounds write

GNU Binutils objcopy.c copy_section heap-based overflow

Polkit: xml policy file with a large number of nested elements may lead to out-of-bounds write

SQLite integer overflow in key info allocation may lead to information disclosure.

Libxslt: heap use-after-free in libxslt caused by atype corruption in xmlattrptr